A vulnerability exists in Check Point Multi-Domain Management versions R82.10 (through Jumbo Hotfix Take 6), R82 (through Jumbo Hotfix Take 91), R81.20 (through Jumbo Hotfix Take 127), and all releases from R81.10 and below. When Compliance is enabled, an authenticated administrator with read-write access to one Management Domain can manipulate metadata related to Compliance Best Practices in another Management Domain, where they lack access permissions. This behavior bypasses Role-Based Access Control (RBAC).
Exploitation of this vulnerability allows for a bypass of Role-Based Access Control, enabling unauthorized modifications to Compliance metadata in restricted Management Domains.
To address this vulnerability, administrators should update to versions of Check Point Multi-Domain Management that include the fix: R82.10 (Jumbo Hotfix Accumulator Take 19 or above), R82 (Jumbo Hotfix Accumulator Take 103 or above), and R81.20 (Jumbo Hotfix Accumulator Take 141 or above). Additionally, it is recommended to enforce multi-factor authentication for all administrator accounts to mitigate the risk of unauthorized access.
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.
